Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/c1cf6f-54cd-434a-837d-def6efb44319/1/a0jt-090uELZaueY3oQxq-6TUZM.roa
File: a0jt-090uELZaueY3oQxq-6TUZM.roa (raw, json)
Hash identifier: NSyMRShnlVXGzzILQ9rXU1Lw0RAU9x9Y0Snn7qE0q1k=
Subject key identifier: 6B:48:ED:FB:4F:74:B8:42:D9:6A:E7:98:DE:84:31:AB:EE:93:51:93
Certificate issuer: /CN=993900f66e70b2fffd9c0ce92602f2f45c659961
Certificate serial: 0193C3C5891DD3099715BD0890FD70CC769B
Authority key identifier: 99:39:00:F6:6E:70:B2:FF:FD:9C:0C:E9:26:02:F2:F4:5C:65:99:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mTkA9m5wsv_9nAzpJgLy9FxlmWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/c1cf6f-54cd-434a-837d-def6efb44319/1/a0jt-090uELZaueY3oQxq-6TUZM.roa
Signing time: Sat 14 Dec 2024 06:05:22 +0000
ROA not before: Sat 14 Dec 2024 06:05:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47452
IP address blocks: 94.141.64.0/19 maxlen: 19
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:47:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:c3:c5:89:1d:d3:09:97:15:bd:08:90:fd:70:cc:76:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=993900f66e70b2fffd9c0ce92602f2f45c659961
Validity
Not Before: Dec 14 06:05:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b48edfb4f74b842d96ae798de8431abee935193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a9:ae:f2:26:53:4a:0f:99:ba:e7:7d:ad:49:
40:ac:19:07:d8:69:dc:c9:8e:e1:19:e1:ff:ce:49:
49:0f:e0:42:23:bc:45:32:32:f8:13:70:bd:22:2b:
8b:6c:7d:d8:6d:6d:94:cc:81:0c:24:ae:ba:05:70:
89:9a:70:7a:09:d0:fb:64:38:a0:ee:96:b1:2c:cd:
07:37:d6:80:c2:0f:c7:62:78:cf:98:6f:41:00:73:
e1:5f:aa:e4:ec:30:5d:b5:02:0b:10:68:f1:4b:4d:
ed:9f:bc:3f:24:c3:5f:6e:0c:f8:0a:7d:13:ba:b5:
e0:c7:f5:88:be:a1:de:e1:40:69:bb:68:93:66:75:
19:0c:b6:d2:bd:a7:c6:20:84:c8:62:92:26:a1:81:
5b:22:31:7d:ef:a9:93:40:40:ce:a8:29:4d:86:f2:
44:89:4a:9a:55:38:26:38:fc:b3:df:3d:d8:a3:44:
b7:29:15:4d:61:1d:8f:2d:f9:85:c2:76:91:30:5a:
5a:f6:c6:59:fe:a2:ac:99:05:98:3e:90:cb:ec:bb:
20:e5:e1:55:ff:bb:49:16:18:9f:95:d8:e3:ff:d8:
c3:5c:23:55:58:51:c9:a6:6e:76:25:25:86:70:f9:
95:e4:ff:82:8d:f0:a8:ff:30:36:94:5e:c3:45:7a:
42:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:48:ED:FB:4F:74:B8:42:D9:6A:E7:98:DE:84:31:AB:EE:93:51:93
X509v3 Authority Key Identifier:
keyid:99:39:00:F6:6E:70:B2:FF:FD:9C:0C:E9:26:02:F2:F4:5C:65:99:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mTkA9m5wsv_9nAzpJgLy9FxlmWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/c1cf6f-54cd-434a-837d-def6efb44319/1/a0jt-090uELZaueY3oQxq-6TUZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/c1cf6f-54cd-434a-837d-def6efb44319/1/mTkA9m5wsv_9nAzpJgLy9FxlmWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.141.64.0/19
Signature Algorithm: sha256WithRSAEncryption
5a:94:43:fd:00:a6:32:29:3a:1a:7a:03:ea:51:c1:8c:c4:e0:
3b:92:43:1d:17:07:ef:38:6e:3b:68:01:91:85:c2:e4:32:df:
53:8c:f2:72:8a:54:0c:03:ef:49:58:40:57:c1:a9:f5:25:64:
2e:fd:ad:a5:08:e9:eb:2e:34:cf:73:92:3d:d0:70:00:53:27:
15:fd:83:fb:89:b9:3b:ec:dc:e2:b0:24:36:63:17:b9:07:e9:
4d:37:ee:18:35:ae:08:cb:e8:ad:9f:9a:8c:eb:0a:03:fe:a0:
7d:d4:95:57:9d:46:16:9d:ba:fd:30:74:76:77:0a:74:89:a1:
9c:ba:4f:4a:b0:94:c5:51:82:fa:8f:34:ce:61:90:12:93:70:
12:da:e6:24:45:f4:93:f9:1d:3e:f7:7f:60:64:df:b5:ac:a3:
e0:29:22:99:9a:9c:87:05:62:ea:8b:01:d9:86:aa:c2:57:9b:
dc:3a:22:93:ef:c9:8e:ac:34:e3:b9:1d:be:cb:6c:d3:2b:91:
bf:23:c1:f2:e2:9f:b0:33:27:62:76:dd:2f:6d:3d:c9:b1:b4:
5b:9c:c8:c1:9f:7e:4c:f5:c4:41:29:18:6a:b1:95:e2:c8:fc:
b4:b6:21:20:8a:57:8a:09:70:ce:ff:cf:62:a0:2a:5f:92:53:
10:95:71:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:15:07 2025 by rpki-client